New report says Facebook gave companies extensive access to users’ private data
search
Amazon, Microsoft, Netflix, Spotify said to have gotten info

New report says Facebook gave companies extensive access to users’ private data

Company defends policies, claims no access given without permission, after NY Times reports some firms could read private messages, see friends lists without consent

In this March 29, 2018, photo, the logo for Facebook appears on screens at the Nasdaq MarketSite in New York's Times Square. (AP Photo/Richard Drew)
In this March 29, 2018, photo, the logo for Facebook appears on screens at the Nasdaq MarketSite in New York's Times Square. (AP Photo/Richard Drew)

Facebook gave some companies more extensive access to users’ personal data than it has previously revealed, letting them read private messages or see the names of friends without consent, according to a New York Times report.

The Times late Tuesday reported that some 150 companies — including powerful partners like Amazon, Microsoft, Netflix, and Spotify — could access detailed information about Facebook users, including messages and data about their friends.

The report marked yet another potential embarrassment for Facebook, which has been roiled by a series of scandals on data protection and privacy and has been scrutinized over the hijacking of user data in the 2016 US election campaign.

According to documents seen by the Times, Facebook allowed Microsoft’s Bing search engine to see names of Facebook users’ friends without consent and “gave Netflix and Spotify the ability to read private messages.”

In this April 12, 2016, photo, Facebook CEO Mark Zuckerberg talks about the company’s 10-year roadmap during the keynote address at the F8 Facebook Developer Conference in San Francisco. (AP Photo/Eric Risberg, File)

The report said Amazon was able to obtain user names and contact information through their friends, and Yahoo could view streams of friends’ posts.

While some of the deals date back as far as 2010, the Times said they remained active as late as 2017 and some were still in effect this year.

The report said Spotify, Netflix, and the Royal Bank of Canada were able to read, write, and delete Facebook users’ private messages, and to see everyone on a message thread. Spotify could look at messages of more than 70 million users a month and still lets users share music through Facebook Messenger while Netflix and the Canadian bank have turned off features that incorporated message access.

‘We’ve been public’

Facebook defended its data sharing practices, with Konstantinos Papamiltiadis, Facebook’s head of developer platforms and programs, saying in a blog post early Wednesday that the Times report was about “integration partners” which enabled “social experiences — like seeing recommendations from their Facebook friends — on other popular apps and websites.”

Papamiltiadis added that “none of these partnerships or features gave companies access to information without people’s permission,” and maintained that the deals did not violate a 2012 privacy settlement with the US Federal Trade Commission.

Papamiltiadis said that “we’ve been public about these features and partnerships over the years because we wanted people to actually use them.

“They were discussed, reviewed, and scrutinized by a wide variety of journalists and privacy advocates,” he said.

But he said most of the features are now gone.

“Still, we recognize that we’ve needed tighter management over how partners and developers can access information,” he added.

Netflix said in a statement the feature was used to make the streaming service “more social” by allowing users to make recommendations to friends, but that it stopped using it in 2015.

“At no time did we access people’s private messages on Facebook or ask for the ability to do so,” Netflix said in an emailed statement.

Spotify offered a similar response, indicating the music service “cannot read users’ private Facebook inbox messages across any of our current integrations.”

The Canadian bank RBC, also cited in the New York Times, said the deal with Facebook “was limited to the development of a service that enabled clients to facilitate payment transactions to their Facebook friends,” and that it was discontinued in 2015.

Facebook’s CEO Mark Zuckerberg arrives to meet France’s President Emmanuel Macron after the “Tech for Good” Summit at the Elysee Palace in Paris on May 23, 2018. (AP Photo/Francois Mori)

Facebook has already been called before lawmakers in the US and elsewhere to defend its data policies since news broke this year on the misuse of personal data in 2016 by Cambridge Analytica, a British consultancy working on Donald Trump’s campaign.

A report prepared for US lawmakers revealed this week showed detailed information on how Russian entities manipulated Facebook and other social networks to support the Trump effort.

Senator Brian Schatz said the latest revelations highlight a need for tougher controls on how tech companies handle user data.

“It has never been more clear,” Schatz tweeted. “We need a federal privacy law. They are never going to volunteer to do the right thing.”

read more:
less
comments
more